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Abstract 

Let G be a finite abelian group G with N elements. In this paper we give a 0{N) 
time algorithm for computing a basis of G. Furthermore, we obtain an algorithm 
for computing a basis from a generating system of G with M elements having time 
complexity 0(M Y1 p \n e (p) Ip 1 ^ 2 ]^^), where p runs over all the prime divisors of N, 
and p e ^\ n(p) are the exponent and the number of cyclic groups which are direct 
factors of the p-primary component of G, respectively. In case where G is a cyclic 
group having a generating system with M elements, a 0(MN e ) time algorithm for 
the computation of a basis of G is obtained. 

Key words: Algorithmic group theory, abelian group, generating system, basis of 
abelian group. 



1 Introduction 



In recent years, interest in studying finite abelian groups has raised due to the 
increasing significant of its relationship with public key cryptography, quan- 
tum computing and error-correcting codes. Abelian groups as the groups Z* of 
invertible elements of Z n , the multiplicative groups of finite fields, the groups of 
elements of elliptic curves over finite fields, the class groups of quadratic fields 
and others have been used for the designation of public key cryptosystems 
[TT] . On the other hand, in quantum computing, the famous hidden subgroup 
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problem in case of a finite abelian group has been solved by a polynomial time 
quantum algorithm [6lll6119j . The Shor's algorithm to factorize integers is one 
very important special case [2D]. Recently, an interesting application of finite 
abelian groups has been given in the construction of efficient error correcting 
codes [TJ. 

The problem of determining if two groups are isomorphic is one of the funda- 
mental problems in group theory and computation. The group isomorphism 
problem is related to the graph isomorphism problem. Interesting results have 
been obtained for the case of abelian groups [2"lfTll|g] . Recently, Kavitha [To] 
proved that group isomorphism for abelian groups with iV elements can be 
determined in O(N) time. 

Let (G, +) be a finite abelian group. Let Hi, . . . , H r be subgroups of G. The set 
of elements Xi+- ■ -+x r , where Xj G Hi (i — 1, . . . , r) is denoted by Hi + - ■ -+H r 
and is a subgroup of G called the sum of Hi, . . . , H r . It is called direct sum if 
for every i — 1, . . . , r we have Hi fl (Hi + ■ • ■ + + H i+ i + • ■ • + H r ) = {0}. 
In this case we write Hi • • • ffi H r . If x G G, then the set < x > of elements 
ax where a G Z is a subgroup of G called the cyclic group generated by x. Let 
SCG. The group < S >= J2xes < x > is called the group generated by S. In 
case where G =< S >, the set S is called a generating system for G. Suppose 
now that G has iV elements and N = p® 1 ■ ■ -p a ^ is the prime factorization of 
N. It is well known that G = G(pi) ® ■ ■ ■ ® G(pk), where G(pi) is a subgroup 
of G of order p^ (i = 1, . . . , k) [T8l Theorem 16, page 96] and is called the 
Pi-primary component of G. Furthermore, for every % = 1, . . . , k, G(pi) can be 
decomposed to a direct sum of cyclic groups < Xij > (j = 1, . . . , H>(pi)) with 
prime-power order. The set of elements Xij (i — 1, . . . , k, j — 1, . . .,n(pi)) is 
called a basis of G. The smallest prime power pf~ p ^ such that p\ x = 0, for 
every x G G(pi) is called the exponent of G(pi). 

The elements of a basis with its orders fully determine the structure of a finite 
abelian group. Thus, an algorithm for finding a basis of a finite abelian group 
can be easily converted to an algorithm of checking the isomorphism of two 
such groups. Therefore, the development of efficient algorithms for the deter- 
mination of the basis of a finite abelian group has fundamental significance in 
all the above applications. 

In jl], Chen gave an 0(N 2 ) time algorithm for finding a basis of a finite abelian 
group G. Recently, in [5], Chen and Fu showed an O(N) time algorithm for 
this task. In case where G is represented by an explicit set of M generators, 
a 0(MN 1 ^ 2+t ) time algorithm is given by Iliopoulos [UJ and 0(MN 1 / 2 ) time 
algorithms are obtained by Teske [23] and by Buchmann and Schmidt [3]. 
When G is represented by a set of defining relations that is associated with an 
integer matrix M(G), the computation of the structure of G can be reduced to 
computing the Smith Normal Form of M(G). A such approach can be found 
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in [13]. Finally, in [2], an algorithm is given for computing the structure of G 
based on Grobner bases techniques. 

In this paper we give a simple deterministic algorithm for the computation 
of a basis of a finite abelian group. More precisely, we prove the following 
theorem. 

Theorem 1 Let G be an abelian group G with N elements. There is an O(N) 
time algorithm for computing a basis ofG. 

An immediate consequence of the above theorem is the following corollary. 

Corollary 1 Group isomorphism for abelian groups with N elements can be 
determined in O(N) time. 

Adapting our method in case where a generating system of G is known, we 
obtain the following theorem. 

Theorem 2 Let G be an abelian group with N elements having a generating 
system with M elements. Let N = p^ 1 ■ ■ -p^ fc be the prime factorization of N 
and fiipi), e(pi) as above. Then, there is an algorithm for computing a basis 
ofG with time complexity 0(M^ =l e(pi)\pl /2 Y^) and n(T$ =1 p$ i(pi) ~ 1)/2 ). 

In the special case where the group G is cyclic, we have the following better 
result. 

Theorem 3 Let G be a cyclic group with N elements having a generating 
system with M elements. Then, there is an algorithm for computing a basis of 
G with time complexity 0(MN e ), where e is arbitrary small. 

The algorithm of Chen and Fu [5], which computes a basis of G, is relied 
on an algorithm of Kavitha [TJ)] for computing the orders of all elements in 
G. Our approach is completely different. The basic idea of our paper is the 
construction of bases of successively larger subgroups of the p-components 
G(p) of G, using an algorithm of Beynon and Iliopoulos [1] and an algorithm 
of Teske [22J, until a basis of G(p) is obtained. Note that [12] yields that the 
time complexity in Theorem 1 and 2 is reasonable. 

We assume that G is given by its multiplication table. This is equivalent to 
the multiplication oracle where each group operation can be performed in 
constant time. Since the expected running time that an integer iV can be 
factorized into product of prime numbers is subexponential (see [5, Chapter 
19] and [251 Section 2.3]), we assume that the prime factorization of N, which 
is the size of abelian group, is known. To measure the running time of our 
algorithm we count the number of numerical operations, comparisons and the 
number of group operations. 
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The paper is organized as follows. In section 2 we give some auxiliary results 
on finite abelian groups which are necessary for the presentation of our al- 
gorithms. In section 3, 4 and 5 we give the algorithms which correspond to 
Theorems 1, 2 and 3. 



2 Auxiliary Results 

In this section we give some results very useful for the design of our algorithms. 
We denote by \A\ the cardinality of a finite set A. If x is a real number, then 
we denote by \x] , as usually, the smallest integer z such that x < z. Let (G, +) 
be a finite abelian group. For x G G, the order of G, denoted by ord(x), is the 
smallest positive integer a. such that fix = (where is the identity element 
of G). If 5* = {xi, . . . , x k } Q G, then we also write < S >=< x±, . . . , x n >. 

Lemma 1 // x G G has order m = p^ 1 ■ ■ -p b k , then for i = 1, . . . , k the 

element X{ = {m/p b i i )x has order p 1 ^ and we have 

< X > = < Xi >©••■©< x k > . 
PROOF. See [HI page 96]. □ 

Let \G\ = N. We assume that the prime factorization of iV = pi 1 ■ ■ -p a k h is 
given. The positive divisors of N are the integers d given by d = p^ 1 ■ ■ ■ p b k h , 
where < \ < eij (z = 1, . . . , k). We denote by t(N) the number of positive 
divisors of N. Put 

B = {(&!,..., b k ) G Z*/ < bt < a h Vi = 1, ... , k}. 

The following algorithm provide us with the positive divisors of N. 

DIVISORS 

Input: N and its prime factorization N = p^ 1 ■ ■ -p k k . 

Output: D(N) = {(di, (6i,i, . . . , b i>k ))/i = 1, . . . , d r{N) }, where d 1 < ■ ■ ■ < d r{N) 
are the positive divisors of iV sorting in increasing order and (b^i, . . . , b iik ) G B 
with d i =p\ 1 ' 1 ■■■p b k ' k . 

(1) For (&!,...,&*) GB 

(a) Compute d{b\, . . . , b k ) = p bl ■ ■ ■ P k ■ 

(b) Store d(pi, . . . , b k ) and the corresponding fe-tuple (&!,..., b k ) in bi- 
nary search tree. 
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(2) Using the binary tree sort, sort the divisors of N in increasing order 
d\ < • ■ ■ < d T (jv). 

The computation of each divisor d requires 0((log<f) 2 ) arithmetic operations. 
Thus the time of computation of all positive divisors of N is 0(T(N)(\ogN) 2 ). 
The time complexity of binary search tree and binary tree sort algorithms is 
0(t(N)). Further, by [TQl Theorem 315, page 260], we have t(N) = 0(N e ), for 
every positive e. Hence, the time complexity of DIVISORS is 0(N e (logN) 2 ). 

Let x G G and m = ord(x). By Lagrange's theorem [T8l page 35], m divides N. 
Furthermore, by Lemma 1, if m — p\ x ■ ■ -p^, then for i — 1, . . . , k the element 
Xi = (m/Pi^x has order p\* . The following algorithm computes correctly m 
and m/pl* (i — 1, . . . , k). 

ORDER 

Input: x G G and D(N). 

Output: [m, mi, . . . , m&], where ord(x) = m = p^ 1 ■ ■ ■ p b k k and m; = m/p^. 

(1) For I = 1,...,t(N) 

test wether or not d\x = 0. If d[X = 0, then stop. 
Put m = d\. 

(2) For % = 1, . . . , k compute = m/p^. 

For the computation of dix, we need O(logiV) operations in G [HI page 69] and 
so, the computation of all dix needs 0(r(N)(log N) 2 ). The computation of 
every needs 0((logm)(logp^)) bit operations and hence, the computation 
of all rrii requires 0((logiV) 2 ) bit operations. Therefore, the time complexity 
of the ORDER algorithm is 0(N € (\ogN) 2 ). 

Suppose that B = {bi, . . . , b n } is a subset of G such that the group H =< B > 
is the direct sum of the cyclic groups < bi > (i = 1, . . .,n). The extending 
discrete logarithm problem (EDLP) is the following problem: 
Given a set B C G as above and w G G, determine the smallest positive 
integer z with zw G H and positive integers z±, . . . , z n satisfying 

n 

zw = ^Zibi. 

i=l 

Note that z < ord(w). If z = ord(w), then H(~) < w >= {0}. In [22], an 
algorithm is presented which solves EDLP with running time 

0(m^{\p l/2 Ye(p)}), 

where the maximum is taken over all prime divisors of iV and p e ^ is the 
exponent of the p-component of G. It is called SOLVE-EDLP. Thus, we have 
SOLVE-EDLP(w ;J B) = (z, zi, . . . , z n ). On the other hand, [21] implies that in 
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case where the order of b{ is a power of a prime p, the expression of a given 
element on a given basis of H requires at least VL(p n / 2 ) operations. 

Let p be a prime divisor of N and G(p) the p-component of G. Suppose that 
B = {bi, . . . , b n } be a subset of G(p) such that the group H =< B > is the 
direct sum of the cyclic groups < bi >, (i = 1, . . . , n). If x G G(p), then we 
denote by H* the group generated by the set BU{x}. Suppose that the orders 
of elements of B are known and we have a relation of the form 

n 

p k x = SA, 
i=i 

where Si G Z and < 5,; < ord(6j) (i = l,...,n). In [T], an algorithm 
is given called BASIS which computes a basis for H* with running time 
0((log |iP|) 2 ). If B* is the basis of H* computed by BASIS, then we write 
BASIS(B,ar,(p*,«Ji,...,<y n )) = J B*. 



3 Proof of Theorem 1 



In this section we develop an algorithm for finding a basis of a finite abelian 
group G. If A and B are two subsets of G, then we recall that A\B denotes 
the set of elements of x which do not belong to B. As we have noted in the 
Introduction, for every prime p dividing \G\, we have to compute a basis for 
the p-primary component G(p) of G. 



BASIS1 

Input: An abelian group (G,+) with \G\ = N and the prime factorization 
N = pi 1 ■ ■ ■ p a k k of N. 

Output: For i = l,...,k, (?/ M , n M ), . . . , where G G with 

ord(% i i) = n^j, such that the pj-primary component of G is 
G{Pi) =< yi,i >©•••©< ^ w ,i >. 

(1) Set G ( Pi ) = {0}, B , t = 0, (z = 1, . . . , A:) and G = {0}. 

(2) Compute DIVISORS (A =pf ■ ■ -p a k k ) = D(N). 

(3) For j = 1,2,3... 

(a) Choose Xj G G\ Gj-\. 

(b) Compute ORDER(xj, D(N)) = [rrij, m^i, . . . , ra^]. 

(c) For z = 1, . . . , k 

(i) Compute Xj^ = rrij^Xj. 

(ii) Compute SOLVE-EDLP(x jii , Bj„ hi ) = (z j)h z jM , . . . , z jjijn ). 

(iii) Compute the bigger integer hj t i > such that p^ 3 ' 1 divides z^i, 
Sj^ Zj^ijp^ and hji SjiXji. 
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(iv) Compute BASIS(5 j _ 1 , h jiU (p^'% z jM , . . . , z jiijTl )) = B jA . 

(v) Set Gj(pi) =< B jti > and Gj = Gj{px) + ■■■ + Gj(p k ). 

(d) Compute the elements of Gj \ Gj-\. 

(e) If \Gj\= N, then stop. 

(4) Output the couples (y 1;i , n lti ), . . . , {yi^i, n^j), where y 1>h . . . , are 
the elements of Bji and ord^j) = rij ti (i = 1, . . . , k). 

Proof of correctness of BASIS 1 

Since in every step j we choose an element Xj G G \ Gj-i, at least one of the 
elements xjj does not belongs to and so Gj is strictly bigger than Gj-\. 
For j = 1, 2, . . . , BASIS1 constructs a basis for the group < {xj ti } U Bj_ lti > 
and, after a finite number of steps, we obtain j = r with G r {pi) = G(pi) 
(i = 1, . . . , k). Hence, the elements of the sets B r i (i = 1, . . . , k) form a basis 
for G(pi). So, G r = G and the elements of the sets B r ^ (i = 1, . . . , k) form a 
basis for G. 

Time Complexity of BASIS1 

Step 2 uses 0(N e (\ogN) 2 ) numerical operations. Suppose that G r = G. A 
bound for r is given by t(N), the number of divisors of , and so r = 0(N € ), 
where e is arbitrary small. In Step 3(b), we repeat r times the procedure 
ORDER and so, the time complexity of Step 3(b) is 0(A e (log A) 2 ). The com- 
putation of each Xj t i requires OQogrn^) group operations [HI page 69]. Since 
Trij,i < pT the time complexity of Step 3c(i) is 

k 

0(r logp-') = O(N e logA0 
i=i 

group operations. Let fi(pi) be the number of cyclic groups which are direct 
factors of G(pi). The Step 3c(ii) uses the procedure SOLVE-EDLP and so, its 
time complexity is 

0drj2\p] /2 ]^-^e( Pl )) = 0{N^\p\ l2 Y^e{p^) = O(N). 

i=l i=l i=l 

The Step 3c(iii) has time complexity 

O (r £ ( log s hl + a, ) ) = O (iV e log N) . 
i=i 

The Step 3c(iv) uses the procedure BASIS and so, its time complexity is 
0(EE(log|G,fe)|) 2 ) = O(iV-(logA0 2 ). 

j=l i=l 
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Since < \Gj\ and divides \Gj\, we have Y%=i < 2 A, and so, 

the time complexity of Step3(d) is O(N). Therefore, the time complexity of 
BASIS1 is O(N). 



4 Proof of Theorem 2 



In this section we develop our algorithm for finding a basis of a finite abelian 
group G in case where a generating system of G is known. We denote by 
the number of cyclic subgroups which are direct factors of G(p) and by p e ^ 
the exponent of G(p). 



BASIS2 

Input: An abelian group (G, +) with |G| = A, a generating system {g ly . . . , g M } 
for G and the prime factorization A = pi 1 ■ ■ ■ p°£ of A. 

Output: For i = l,...,k, (y^, n lti ), . . . , (y^, ra^), where y j:i £ G with 
ord(yj i j) = rij^, such that the ^-primary component of G is 
G(pi) =< yi,i >©•••©< yi(i),i >. 

(1) Compute DIVISORS (A = pf ■ ■ -p a k k ) = D(N). 

(2) For j = 1, . . . , M, compute ORDER^, D(N)) = [mj,m jtl , . . . , m j>k \. 

(3) For i — 1, . . . , k and j = 1, . . . , M, compute gr^ = rrij^gj. 

(4) For i = 1, . . . , fc, 
Set £ M = 

For j = 2, ... , M, 
If|<%>|^% 

(a) Compute SOLVE-EDLP^, Bj_ hi ) = (z jti , z jM , Zj^ n ). 

(b) Compute the bigger integer kj ti > such that p^' 1 divides Zj ti , Sj ti = 
z j,ilVi and hj : i = Sj^gjj. 

(c) Compute BASIS(S j _i, h jth ^■ >i>1 , . . . , Zj,i,„)) = B jti . 

(5) Output the couples . . . , (yi^^n^), where y M , . . - , 3/«(*),< are 
the elements of Bm,i and ord^j) = rij^ (i — 1, . . . , k). 

Proof of correctness of BASIS2 

For j — 1, . . . M the algorithm constructs a basis of the group < g^ h Bj_ 1;i > 
until a basis of G{pi) is obtained. 

Time Complexity of BASIS2 

Step 1 requires 0(A e (log A) 2 ) bit operations. The complexity of Step 2 is 
0(MA e (log A) 2 ), where e is arbitrary small. For the computation of ev- 
ery g,ji = rrijigj we need O(logmj j) group operations. Since rrijj < 
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Step 3 requires 0(M log N) group operations. For i = l,...,k, the use of 
SOLVE-EDLP, in Step 4(a), requires 0(e{pi)M\p^ 2 Y^) operations, Step 
4(b) 0(M log Pi 1 ) operations and the use of BASIS, in Step 4(c), 0(M(logpf) 2 ) 
operations. Hence, the time complexity of BASIS2 is 

0(Mj2e(p t )\p 1/2 r^ ] ). 
i=i 

Moreover, using the lower bound for the time complexity of SOLVE-EDLP, 
we have 

k 
i=l 



5 Proof of Theorem 3 

In this section, we suppose that the abelian group G is cyclic. We propose a 
simple algorithm in case where a generating system of G is known. 

BASIS3 

Input: A cyclic group (G, +) with \G\ = N, a generating system {g±, . . . , qm} 
for G and the prime factorization N = p ^ ■ ■ ■ p°£ of N. 

Output: (yi, . . . ,yk), where j/j6G with ord(yj) = pf*, and so, the pj-primary 
component of G is G(pi) =< y± >. 

(1) Compute DIVISORS (A = p? 1 • • -p a k k ) = D(N). 

(2) For j = 1, . . . , M, compute ORDERS , D(N)) = [nij, m j)1} m jik \. 

(3) For i = 1, . . . , k and j = 1, . . . , M, compute = rrij^gj. 

(4) For % = 1, . . . , k, find s 6 {1, . . . , M}, with OTd(g s>i ) = maxi< t < M {ord(# tji )}, 
and set y { = g s>i . 

(5) Output (y u ...,y k ). 

Proof of correctness of BASIS3 

We remark that G(pi) =< g^i, . . . ,gM,i >■ On the other hand, since G is a 
cyclic group, we have Gipi) = Z «». It follows that, the element having the 
maximum order among g^, . . . , gM,i, is the generator of G(pi). 

Time Complexity of BASIS3 

The Step 1 and 2, require 0{N e (log N) 2 ) and O [MN e (log N) 2 ) group opera- 
tions, respectively. The Step 3 needs 0(M log N) group operations. The Step 4 
needs Q(kM) operations, and since k = O(loglogA) [TQl page 359], it follows 
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that the time complexity of this step is 0(M log log N) operations. Therefore, 
the time complexity of BASIS3, is 0(MN e ). 
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